You have to invite them in

This Talos Threat Source newsletter highlights a shift toward identity-focused attacks (MFA interception, fraudulent device registration) and reports a likely opportunistic destructive compromise at Stryker, while summarizing top headlines including a new .NET AOT evasion technique, the SideWinder espionage campaign expansion, credential‑theft campaigns targeting VPN users, a public exposure of 3.7M Sears chatbot chat/audio records, and the BeatBanker Android crypto‑stealer; the report includes actionable defensive guidance and several malware file hashes as indicators.